breach
-
Blog
HPE investigates breach as hacker claims to steal source code
Hewlett Packard Enterprise (HPE) is investigating claims of a new breach after a threat actor said they stole documents from the company’s developer environments. The company has told BleepingComputer that it hasn’t found any evidence of a security breach, but it is investigating the threat actor’s claims. “HPE became aware on January 16 of claims being made by a group…
Read More » -
Blog
Data breach at CODAC Behavioral Health compromises SSNs and medical information
Last week, Rhode Island’s largest non-profit opioid treatment provider, CODAC Behavioral Health, began issuing data breach notifications following a cyber attack in July 2024. This attack was claimed by ransomware gang Qilin in August with 9GB of data allegedly stolen. In its notification, CODAC said: “On July 24, 2024, CODAC detected suspicious activity in its network environment.” After securing its…
Read More » -
Blog
Otelier data breach exposes info, hotel reservations of millions
Hotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests’ personal information and reservations for well-known hotel brands like Marriott, Hilton, and Hyatt. The breach first allegedly occurred in July 2024, with continued access through October, with the threat actors claiming to have stolen amost eight terabytes of data…
Read More » -
Blog
Law firm Wolf Haldenstein notifies 3.4 million people of data breach that compromised SSNs and medical info
Law firm Wolf Haldenstein Adler Freeman & Herz yesterday confirmed it notified 3,445,537 people of a December 2023 data breach that compromised Social Security numbers, employee ID numbers, medical diagnoses, and medical claim information. Ransomware gang Black Basta claimed responsibility for the breach shortly after it occurred. At the time, it gave Wolf Hadenstein just over a week to pay…
Read More » -
Blog
Cannabis retailer STIIIZY notifies 380,000 customers of data breach
Cannabis retailer Stiiizy yesterday confirmed it notified 380,000 people of an October 2024 data breach that compromised the following customer info: Info from government-issued ID cards including driver’s licenses and medical cannabis cards Transactions with dispensaries Names Addresses Dates of birth Passport numbers Photographs Signatures “Other personal information” The attack was limited to California, where the following Stiiizy locations were…
Read More » -
Blog
STIIIZY data breach exposes cannabis buyers’ IDs and purchases
Popular cannabis brand STIIIZY disclosed a data breach this week after hackers breached its point-of-sale (POS) vendor to steal customer information, including government IDs and purchase information. STIIIZY is a a California-based cannabis brand known for its pod-based vaporizers and a variety of cannabis products, including flower, edibles, THC concentrates, and extracts. In a data breach notification published earlier this week, STIIIZY…
Read More » -
Blog
Telefónica confirms internal ticketing system breach after data leak
Spanish telecommunications company Telefónica confirms its internal ticketing system was breached after stolen data was leaked on a hacking forum. Telefónica is a Spanish multinational telecommunications company operating in twelve countries with over 104,000 employees. The company is the largest telecommunications firm in Spain, operating under the name Movistar. In an email to BleepingComputer today, Telefónica confirmed its ticketing system…
Read More » -
Blog
Largest US addiction treatment provider notifies patients of data breach
BayMark Health Services, North America’s largest provider of substance use disorder (SUD) treatment and recovery services, is notifying an undisclosed number of patients that attackers stole their personal and health information in a September 2024 breach. The Texas-based organization provides medication-assisted treatment (MAT) services targeting both substance use and mental health disorders to more than 75,000 patients daily in over…
Read More » -
Blog
New York clinic notifies 357K people of data breach that compromised SSNs and medical records
New York clinic Excelsior Orthopaedics this week confirmed it notified 357,000 people about a June 2024 data breach that compromised the following employee and patient info: Names Social Security numbers Biometric info Medical record number Diagnoses and diagnosis codes Treatment locations Procedure types Provider names Treatment costs Medical dates of service Patient account numbers and subscriber member numbers Health insurance…
Read More » -
Blog
UN aviation agency confirms recruitment database security breach
The United Nations’ International Civil Aviation Organization (ICAO) has confirmed that a threat actor has stolen approximately 42,000 records after hacking into its recruitment database. This follows ICAO’s announcement on Monday that it was investigating what it described as a “potential information security incident.” While the UN agency didn’t provide additional details, this came two days after a threat actor…
Read More »